SonicWALL SonicWALL UTM Appliance manual Importing the CA Certificate onto the SonicWALL

Page 4

Exporting the CA Certificate from the Active Directory Server

To export the CA certificate from the AD server:

Step 1: Launch the Certification Authority application: Start > Run > certsrv.msc.

Step 2: Right click on the CA you created and select Properties.

Step 3: On the General tab, click the View Certificate button.

Step 4: On the Details tab, select Copy to File.

Step 5: Follow through the wizard, and select the Base-64 Encoded X.509 (.cer) format.

Step 6: Specify a path and filename to which to save the certificate.

Importing the CA Certificate onto the SonicWALL

To import the CA certificate onto the SonicWALL:

Step 1: Browse to System > CA Certificates.

Step 2: Select Add new CA certificate. Select the certificate file you just exported.

Step 3: Click the Import certificate button.

Configuring the SonicWALL Appliance for LDAP

The Users > Settings page in the administrative interface provides the settings for managing your LDAP integration:

Step 1: In the SonicOS administrative interface, open the Users > Settings page.

Step 2: In the Authentication method for login drop-down list, select either LDAP or LDAP + Local Users.

Step 3: Click Configure.

Step 4: If you are connected to your SonicWALL appliance via HTTP rather than HTTPS, you will see a dialog box warning you of the sensitive nature of the information stored in directory services and offering to change your connection to HTTPS. If you have HTTPS management enabled for the interface to which you are connected (recommended), check the “Do not show this message again” box and click Yes.

4

Image 4
Contents Contents Page Configuring the CA on the Active Directory Server Integrating LDAP/Active Directory with Sonicwall UTMConfiguring the SonicWALL Appliance for Ldap Importing the CA Certificate onto the SonicWALLPage Page Page Page Page Page Page Enable Radius to Ldap Relay Enables this feature Authentication Page Page Page SonicOS Options That Leverage Groups/Users Creating Firewall Rules with Ldap Groups/UsersPage Page Firewall Rules with Bandwidth Management & Logging Page Blocking Websites Domain Names for Groups/Users Blocking Domains with Firewall RulesPage Page Navigate to Firewall Access Rules Create a rule to allow Http traffic for your allowed lists Do the same for Https Create the deny rules for Http and Https Firewall rules should now look like the below picture Blocking Https SSL Domains with SSL Control Configuring a SSL Blacklist and Whitelist Page Applying Different CFS Policies to Groups Page Creating Custom CFS Policies Navigate to the Policy tab and add a new CFS policy Page Page Page Variables for Custom Block Page in SonicOS Http//$$fwinterface$$/$#SWLSTYLESCSS#$Basic Sample Code for SonicOS Advanced Sample Code for SonicOSPage Page Sample JavaScript Code for SonicOS Sample Code for SonicOS 5.1 or EarlierApplying Application Firewall Polices to Groups/Users Page Page Page Page Tightening Control over the Browsing Behavior of Users Blocking IM Traffic Categorically Applying Granular IM Policies Applying VPN Access Policies to Groups/Users Global VPN Client GVCPage SSL-VPN NetExtender Guest Services Wireless Guest Services